Security Research

Voting Experts: Why the Heck Are People Still Voting Online?

At least 100,000 online ballots—including the votes of overseas military personnel—were cast in 2016.

GAO: Vulnerabilities Plague 'Entire Generation' of U.S. Weapons Systems

Defense officials were often unaware of vulnerabilities and didn’t notice they were being exploited.

Hackers Report Cites ‘Staggering’ Vulnerabilities in U.S. Voting Systems

The report from DEF CON’s Voting Village found one bug that alone could flip the Electoral College. Another has gone unfixed for 11 years.

Facebook Introduces Bug Bounty Program For Third-Party Apps

The company will accept reports discovered from passive viewing only.

Senate-Passed Bill to Hack DHS Heads to House Floor

The bill would create the first departmentwide bug bounty in the civilian government.

Ransomware Strikes Launched a Cyber Cleansing Program at Transportation

The Transportation Department started with a bug hunting campaign that turned up unexpected vulnerabilities in headquarters computer systems.

Hackers Target Marines for Pentagon's Latest Bug Bounty

“Hack the Marine Corps” kicked off with a live-hacking event in Las Vegas.

GSA Adds Login.gov to Sweeping Bug Bounty Program

Participants can win between $150 and $5,000 for each bug they find.

The Chinese Government Likely Knew about Spectre and Meltdown Bugs Before the U.S.

Fixing hardware and software vulnerabilities requires global information sharing—and that includes U.S. cyber adversaries.

Cyber Researchers Don’t Think Feds or Congress Can Protect Against Cyberattacks

Only 15 percent of cyber researchers think the U.S. can defend against a critical infrastructure cyberattack, according to a survey.

Hackers Find 65 Bugs in the Pentagon’s Travel Management System

The Defense Department’s fifth bug bounty awards $80,000 for spotting security holes in a travel system used by millions of the agency’s employees.

Pentagon is Planning Another Bug Bounty Contract

The contract envisions some short contests of just a few weeks and some that are ongoing.

House Committee Forwards State Department Bug Bounty Bill

The ethical hacking competition is modeled on the Hack the Pentagon program.

DHS Plans To Formalize Bug Disclosure Policy

The policy will make it easier for computer researchers to share hackable vulnerabilities they find in Homeland Security systems.

DHS is Lukewarm on the Bug Bounty Programs Congress Keeps Pushing

A bill mandating a DHS bug bounty passed the Senate Tuesday, but the department says it would duplicate work it’s already doing.